Privacy Policy

Traidly ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

1. Information We Collect

We collect the following types of information:

Account Information

  • Email address
  • Display name
  • Profile photo (if signing in with Google)
  • Language preference
  • Country of residence (approximate, derived from IP)

Trading Settings (You Provide)

  • Default capital amount
  • Default risk percentage
  • Preferred instruments
  • Panel position preferences

Trade Data (When You Connect a Broker)

  • Trade entries and exits
  • Profit and loss data
  • Position sizes
  • Tags, notes, and emotional state you record
  • Chart screenshots (if enabled)

Technical Information

  • IP address
  • Browser type and version
  • Operating system
  • Usage analytics (pages visited, features used)

Payment Information

Payment information is processed by our payment provider (Stripe). We do not store your credit card details on our servers.

2. How We Use Your Information

We use your information to:

  • Provide, operate, and maintain the Service
  • Process your subscription and payments
  • Personalize your experience
  • Send you transactional emails (account verification, receipts, account changes)
  • Send you product updates and marketing communications (with your consent)
  • Detect, prevent, and address technical issues and fraud
  • Comply with legal obligations

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area, we process your data under the following legal bases:

  • Performance of contract: to provide the Service you requested
  • Legitimate interest: for analytics, security, and fraud prevention
  • Consent: for marketing communications and non-essential cookies
  • Legal obligation: when required by law

4. Data Sharing

We do not sell your personal data. We may share your data with:

  • Service providers (Supabase for database/auth, Stripe for payments, Vercel for hosting)
  • Brokers (only when you explicitly connect a broker account)
  • Legal authorities when required by law

5. Broker Credentials Security

When you connect a broker account, we store OAuth tokens encrypted at rest using AES-256-GCM. Tokens are stored exclusively on our backend servers and are never accessible from the browser. We use the principle of least privilege and request only the OAuth scopes necessary to provide the Service. We do not have the ability to withdraw funds from your broker account.

6. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: request a copy of your personal data
  • Rectification: correct inaccurate data
  • Erasure: request deletion of your data
  • Restriction: limit how we process your data
  • Portability: receive your data in a structured format
  • Objection: object to certain processing activities
  • Withdraw consent: at any time

To exercise these rights, contact us at privacy@traidly.io. We respond within 30 days.

7. Data Retention

We retain your personal data only as long as necessary to provide the Service and comply with legal obligations. When you delete your account, we delete your personal data within 30 days, except where retention is required by law.

8. International Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States. We rely on Standard Contractual Clauses (SCCs) and the EU-US Data Privacy Framework where applicable to ensure adequate protection.

9. Security

We implement industry-standard security measures including encryption in transit (TLS) and at rest (AES-256), access controls, and regular security audits. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

10. Children's Privacy

The Service is not intended for users under 18. We do not knowingly collect personal data from children under 18.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or in-app notification.

12. Contact

For privacy questions, contact us at privacy@traidly.io.